Stories by Lucian Constantin

Iranian hackers compromised airlines, airports, critical infrastructure companies

For the past two years, a team of Iranian hackers has compromised computers and networks belonging to over 50 organizations from 16 countries, including airlines, defense contractors, universities, military installations, hospitals, airports, telecommunications firms, government agencies, and energy and gas companies.

Syrian Electronic Army posts hacking message on several news sites

A hacker group called the Syrian Electronic Army (SEA) scared visitors to several news websites on Thursday by posting rogue pop-up messages saying they'd been hacked.

Over 23,000 Web servers infected with CryptoPHP backdoor

Over 23,000 Web servers were infected with a backdoor called CryptoPHP that's bundled with pirated themes and plug-ins for popular content management systems.

Siemens patches critical SCADA flaws likely exploited in recent attacks

Siemens released security updates for several of its SCADA (supervisory control and data acquisition) products for industrial environments, in order to fix critical vulnerabilities that may have been exploited in recent attacks.

PoS malware also targeting ticket vending machines and electronic kiosks

Cybercriminals are using malware designed to steal payment card information from point-of-sale systems to also infect ticket vending machines and electronic kiosks.

Hacking Team surveillance malware masquerades as legitimate bookmark manager

A variant of the Remote Control System (RCS) malware developed by an Italian company called Hacking Team is masquerading as a bookmark management application called Linkman, according to the main developer of a new malware scanning tool.

Bitdefender security appliance for home networks seeks to replace end-point antivirus

Antivirus firm Bitdefender unveiled a hardware security appliance for home networks Tuesday that aims to protect devices by scanning network traffic to detect and block potential security threats.

'Less' means more to malware authors targeting Linux users

Using the "less" Linux command to view the contents of files downloaded from the Internet is a dangerous operation that can lead to remote code execution, according to a security researcher.

Critical XSS flaws patched in WordPress and popular plug-in

New security updates released for the WordPress content management system and one of its popular plug-ins fix cross-site scripting (XSS) vulnerabilities that could allow attackers to take control of websites.

Citadel malware now targets password management applications

Attackers have started using the Citadel Trojan program to steal master passwords for password management applications and other authentication programs.

Activists release Detekt tool that finds surveillance malware

A free tool released Thursday allows users to scan their computers for surveillance malware that has been used in attacks against journalists, human rights defenders and political activists around the world.

Long-running Android botnet evolves, could pose threat to corporate networks

An Android Trojan program that's behind one of the longest running multipurpose mobile botnets has been updated to become stealthier and more resilient.

BitTorrent dismisses security concerns raised about its Sync app

BitTorrent dismissed claims that its popular peer-to-peer file synchronization program BitTorrent Sync has an insecure cryptographic implementation that potentially gives the company access to users' files.

EFF, Mozilla back new certificate authority that will offer free SSL certificates

A new organization supported by Mozilla, the Electronic Frontier Foundation and others is working to set up a new certificate authority (CA) that will provide website owners with free SSL/TLS certificates.

New ransomware CoinVault allows users to decrypt one file for free

Cybercriminals behind a new ransomware program called CoinVault are trying out a new psychological tactic to convince users to pay up -- freebies.

CIO
ARN
Techworld
CMO